What's New
- 22 Jun 2023
- Print
- DarkLight
What's New
- Updated on 22 Jun 2023
- Print
- DarkLight
Article Summary
Share feedback
Thanks for sharing your feedback!
Version 3.10.1
Released 2022-12-06
Fixed
- Bug in block page challenge rendering on 3rd party configuration
Version 3.10.0
Released 2022-08-25
Added
- Support for first party
- Support for CI V2 hashing protocol
Fixed
- Bug in client IP extraction feature
Version 3.9.1
Released 2022-04-11
Fixed
- URLs with query params did not render properly on new block page
Version 3.9.0
Released 2022-04-11
Added
- Custom logo added to JSON block response
Changed
- Updated block page to use new template
Version 3.8.0
Released 2022-02-08
Added
- Support for credentials intelligence protocols
v1andmultistep_sso - Support for login successful reporting methods
header,status, andcustom - Support for automatic sending of
additional_s2sactivity - Support for manual sending of
additional_s2sactivity via header or API call - Support for sending raw username on
additional_s2sactivity - New
request_idfield to all enforcer activities
Changed
- Login credentials extraction handles body encoding based on
Content-Typerequest header - Successful login credentials extraction automatically triggers risk_api call without needing to enable sensitive routes
Version 3.7.8
Released 2022-02-03
Fixed
- Minor index not found verbosity error fixed
Version 3.7.7
Released 2022-01-11
Added
- Added default cookie origin on context creation
Version 3.7.6
Released 2022-01-07
Fixed
- Bug with sensitive routes on mobile
Added
- Sending graphql operation type and name on activities
Version 3.7.5
Released 2021-12-22
Fixed
- Allows extraction of login credentials via a custom static class method
Version 3.7.4
Released 2021-12-20
Added
- Option to extract login credentials via custom callback function
Version 3.7.3
Released 2021-12-14
Fixed
- HMAC validation failed bug
Added
- Compromised credentials header support
Version 3.7.2
Released 2021-08-03
Fixed
- Sanitize PXHD before setting cookie
- CookieOrigin value set when appropriate
- Tweaked async activities to match spec
Version 3.7.1
Released 2021-06-16
Fixed
- hostUrl typo in
handleVerification()
Version 3.7.0
Released 2021-06-13
Added
- Support for advanced blocking response
- Support for return response
Fixed
- Minor bugs (lowercase headers, nonexistent
is_iterablefunction in PHP <7.0)
Version 3.6.0
Released 2021-05-11
Added
- Support for login credentials extraction feature
- New s2s_error pass reason in activities
- Detailed s2s_error information
Version 3.5.4
Released 2021-03-11
Fixed
- Updated deprecated syntax.
Version 3.5.3
Released 2020-12-13
Fixed
- Rename of
PerimeterxOriginalTokenValidator
Version 3.5.2
Released 2020-04-01
Fixed
- Added check for false value for
openssl_decrypt
Version 3.5.1
Released 2020-03-19
Fixed
- Validation for cookie iterations count.
Version 3.5.0
Released 2020-02-02
Added
- Support for
defer_activities.
Version 3.4.0
Released 2020-01-15
Added
- Support for
activities_timeoutandactivities_connect_timeout.
Version 3.3.1
Released 2020-01-09
Fixed
- Emprty $port check before using strpos
Version 3.3.0
Released 2019-12-15
Added
- Support for setting an handler for Guzzle.
- Support for custom block url.
Fixed
- http_method not sent on async activities (page_requested/block).
- refactor to
pxResetmethod.
Version 3.2.1
Released 2019-09-15
Fixed
- Better handling of x-px-original-token validation
Version 3.2.0
Released 2019-08-13
Fixed
- Better handling for getting px/px3 cookies
- Refactor to enrich custom parameters function
Version 3.1.0
Released 2019-03-09
Added
- Support for testing blocking flow in monitor mode
Fixed
- Error handling for HTTP client calls
Version 3.0.3
Released 2019-01-16
Fixed
- PXHD - set cookie without encoding
Version 3.0.2
Released 2019-01-13
Fixed
- PXHD related fix
Version 3.0.1
Released 2019-01-06
Fixed
- PXHD cookie path
Version 3.0.0
Released 2018-12-25
Added
- First-Party fallback for block templates
- Support for PXHD cookies
- Enrich Custom Parameters support for async activities
Version 2.10.0
Released 2018-06-28
Added
- Added data enrichment support
- Removed mcrypt dependecy
Version 2.9.0
Released 2018-06-11
Added
- Handle original token for mobile
- Simulated_block property on Risk API call
- Ratelimit support
- Enrich Custom Parameters support
- Captcha v2 support
Fixed
- Replaced mcrypt with openssl
Version 2.8.0
Released 2017-12-04
Changed
- Enhanced module logs
Fixed
- Headers extraction fix
- Fixed debug_mode flag in relation to log output
Version 2.7.0
Released 2017-11-05
Added
- Support funCaptcha
- Support new captcha flow
- Support mobile sdk pinning error
Fixed
- Mobile SDK flow
Changed
- Default block socre is set to 100 instead of 70
- Default module_mode is set to MONITOR_MODE
In order to get the module to blocking mode, setmodule_mode => Perimeterx::$ACTIVE_MODE
Examples can be found on README.md or in the examples directory
Version 2.6.2
Released 2017-06-04
Added
- New s2s_call_reason for mobile sdk connection error
Fixed
- Fixed collectorUrl for mobile sdk response
Version 2.6.1
Released 2017-06-04
Changed
- Removed perimeterx snippet from mobile app block pages
Fixed
- Added missing host-url parameter
Version 2.6.0
Released 2017-06-04
Added
- Sending real uuid in page_requested
- Support for Mobile SDK
Changed
- Real IP headers are now a list instead of single value (single
- Sending page activities by default
Fixed
- On blocked, status code is 403
Version 2.5.1
Released 2017-06-04
Added
- sending pass_reason with page requested activities
- sending risk_rtt on block/page_activity
Version 2.5.0
Released 2017-04-20
Added
- sending cookie's original value when decrypt fails
Version 2.4.1
Released 2017-04-18
Added
- Sending cookie's original value when decrypt fails
Version 2.4.0
Released 2017-03-13
Added
- JavaScript challenge support
- Sending cookie's hamc on page requested for cookie replay detection
Modified
- Changed collector's server urls
- Redesigned default block/captcha pages + added the ability to inject css, js and logo files to the pages
- More tests coverage
Version 2.3.0
Released 2016-11-29
Added
- Cookie v3 support (recomended action exposed on context)
- Moved the risk v2 API
Version 2.2.3
Released 2016-11-29
Added
- Added TravisCI integration and badge
Modified
- Fixed tests
- Changed PHPUnit version in composer.json
Version 2.2.2
Released 2016-11-29
Modified
- Reverted per app id server ip
Version 2.2.1
Released 2016-11-29
Modified
- Minor fixes
Version 2.2.0
Released 2016-11-22
Added
- Support UUID for captcha on Risk API requests
- Passing Risk cookie on page activities
Modified
- Fixed tests
- Updated Documentation
Version 2.1.0
Released 2016-11-03
Added
- Support for user Reset
- UTF-8 encode support
Modified
- Flow enhancements
- Updated Documentation
Version 2.0.0
Released 2016-11-03
Added
- PSR-3 logger.
- Additional activities handler to expose request context.
- PHPUnit tests
Modified
- Fixed dependencies
- Updated Documentation
Version 1.3.15
Released 2016-10-20
Added
Authorizationheader to activity api calls
Modified
- Updated composer version to 1.3.15
Was this article helpful?